Structure of a X.509 certificate

Subject: Structure of a X.509 certificate
Author: X509
In response to: X.509 Certificate & PKIX
Posted on: 05/01/2007 07:56:24 PM

The structure of a X.509 v3 digital certificate is as follows:

Certificate 
  Version 
  Serial Number 
  Algorithm ID 
  Issuer 
  Validity 
    Not Before 
    Not After 
  Subject 
  Subject Public Key Info 
    Public Key Algorithm 
    Subject Public Key 
  Issuer Unique Identifier (Optional, since V2) 
  Subject Unique Identifier (Optional, since V2) 
  Extensions (Optional, since V3) 
    KeyUsage (e.g. keyCertSign)
    AlternativeNames (e.g. DNS anmes, Email address)
    ... 
Certificate Signature Algorithm 
Certificate Signature

>
> On 05/01/2007 07:54:20 PM X509 wrote:

What is a Certificate?
A certificate is a digitally signed statement from on entity (the issuer), saying that the public key (and some other information) of another entity (the subject) has some specific value.

What is X.509?
In cryptography, X.509 is a standard specifying formats for public-key certificates and a certification path validation algorithm.

What is PKIX?
PKIX for Public Key Infrastructure (X.509).

What is X.509 Certificate?
X.509 certificate usually refers to the IETF's PKIX Certificate and CRL Profile of the X.509 v3 certificate standard, commonly referred to as PKIX.

References:

Next Post: Example of a X.509 certificate X509 05/01/2007 07:57:29 PM
Previous Post: X.509 Certificate & PKIX X509 05/01/2007 07:54:20 PM
Next Topic: Java Data Type Conversions and Promotions EricJ 08/31/2007 06:56:54 PM
Previous Topic: SSL vs TLS - What's different? authen 04/27/2007 02:22:03 PM
Index: by Date
Index: by Topic